Section: .. / 0705-advisories /
| /// File Name: |
05.09.07-1.txt |
Description:
|
iDefense Security Advisory 05.09.07 - Remote exploitation of a design error vulnerability in an ActiveX control installed by Symantec Norton Internet Security 2006 could allow for the execution of arbitrary code. Defense confirmed the existence of this vulnerability within version 12.2.0.13 of NavOpts.dll as distributed with Norton Internet Security 2006. Prior versions are suspected to be vulnerable.
| | Author: | Peter Vreugdenhil | | Homepage: | http://www.idefense.com/ | | File Size: | 3995 | | Related CVE(s): | CVE-2006-3456 | | Last Modified: | May 10 05:56:05 2007 |
| MD5 Checksum: | 7927b6b7092a2f9525bdd7fc8f777708 |
|
| /// File Name: |
sa24972.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in BrightStor ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24972/ | | File Size: | 3931 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 8f8c8b3dfe1e8370e3672880e587d989 |
|
| /// File Name: |
sa25109.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco PIX and ASA, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25109/ | | File Size: | 3920 | | Last Modified: | May 4 07:48:13 2007 |
| MD5 Checksum: | 07e0c6d3058e60fba505788d246a81fb |
|
| /// File Name: |
sa25183.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Microsoft Exchange, which can be exploited by malicious people to conduct script insertion attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25183/ | | File Size: | 3859 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 6ad654c9ccbcfa5741735dfc330856f1 |
|
| /// File Name: |
04.27.07-1.txt |
Description:
|
iDefense Security Advisory 04.27.07 - Remote exploitation of a design error in the "Shared Folders" feature of VMware Inc.'s VMware Workstation could allow an attacker to write arbitrary content from a guest system to arbitrary locations on the host system. The "Shared Folders" feature of VMware Workstation allows folders on the physical "host" system to be shared with virtual "guest" systems. Due to a flaw in the code which validates that the filename is safe, an attacker or malicious code within the guest system can read or write files on the host system in the context of the user running Workstation. iDefense confirmed this vulnerability to exist in VMware Workstation 5.5.3 build 34685 on a Windows XPSP2 host. Other versions may also be affected.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 3844 | | Related CVE(s): | CVE-2007-1744 | | Last Modified: | May 3 07:17:50 2007 |
| MD5 Checksum: | a5985d27acc6eb6f99e110ce44769ee8 |
|
| /// File Name: |
MDKSA-2007-101.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in vim 7.0's modeline processing capabilities was discovered where a user with modelines enabled could open a text file containing a carefully crafted modeline, executing arbitrary commands as the user running vim.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3818 | | Related CVE(s): | CVE-2007-2438 | | Last Modified: | May 11 03:46:54 2007 |
| MD5 Checksum: | 88bf9bb5d8efde4c030fd6a7087a4225 |
|
| /// File Name: |
modprops-dos.txt |
Description:
|
Determina Security Research has discovered a denial of service vulnerability in the code responsible for parsing iCal email attachments in Microsoft Exchange. This vulnerability can be exploited by a malicious email message and results in a denial of service. The vulnerable code is present in Exchange 2000 and 2003.
| | Author: | Alexander Sotirov | | Homepage: | http://www.determina.com/ | | File Size: | 3806 | | Related CVE(s): | CVE-2007-0039 | | Last Modified: | May 10 04:17:36 2007 |
| MD5 Checksum: | 517efa884b7027c6bb781a308e87eb6b |
|
| /// File Name: |
dsa-1290-1.txt |
Description:
|
Debian Security Advisory 1290-1 - It was discovered that the webmail package Squirrelmail performs insufficient sanitising inside the HTML filter, which allows the injection of arbitrary web script code during the display of HTML email messages.
| | Homepage: | http://www.debian.org/security | | File Size: | 3753 | | Related CVE(s): | CVE-2007-1262 | | Last Modified: | May 15 07:49:44 2007 |
| MD5 Checksum: | 380801c28dc6877788aa739cf229138e |
|
| /// File Name: |
sa25202.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in various CA products, which can be exploited by malicious users to gain escalated privileges and by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25202/ | | File Size: | 3736 | | Last Modified: | May 12 04:30:02 2007 |
| MD5 Checksum: | e7aafb1413ff03745b23ad11bf78782b |
|
| /// File Name: |
05.10.07-1.txt |
Description:
|
iDefense Security Advisory 05.10.07 - Local exploitation of a design error vulnerability in the srsexec binary optionally included in Sun Microsystems Inc., Solaris 10 allows attackers to gain access to sensitive information, such as the root password hash. The vulnerability specifically exists because of a failure to drop permissions or check the permissions on the file specified for the target file. If a user specified verify only mode (-v) as well as debug mode (-d), and specified a protected file such as /etc/shadow, srsexec will display the first line of /etc/shadow in the debug messages. iDefense has confirmed the existence of this vulnerability in Solaris 10 with the SUNWsrspx package installed.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3731 | | Last Modified: | May 11 04:03:13 2007 |
| MD5 Checksum: | 825b8fad3d665c164ee2330c41490f69 |
|
| /// File Name: |
sa25232.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Samba, which can be exploited by malicious users to perform certain actions with escalated privileges and to compromise a vulnerable system, and by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25232/ | | File Size: | 3687 | | Last Modified: | May 16 03:04:41 2007 |
| MD5 Checksum: | 9d4009a88085dca8c0823729a9c3f042 |
|
| /// File Name: |
sa25236.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/25236/ | | File Size: | 3672 | | Last Modified: | May 16 03:04:41 2007 |
| MD5 Checksum: | 62146dc072b9697711a59a33bcec64bf |
|
| /// File Name: |
sa25047.txt |
Description:
|
Secunia Security Advisory - Cisco has acknowledged some vulnerabilities in various Cisco products, which can be exploited by malicious users to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25047/ | | File Size: | 3666 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 91b552da0bbe333c80135d77f513ac1b |
|
| /// File Name: |
05.14.07-1.txt |
Description:
|
Remote exploitation of a command injection vulnerability within Samba Project's Samba could allow an attacker to execute arbitrary code with nobody privileges. The vulnerability exists within the code responsible for updating a user's password in the SAM database. Unfiltered user input is passed to "/bin/sh". This allows an attacker to execute arbitrary shell commands with the privileges of the nobody user. iDefense has confirmed the existence of this vulnerability in Samba version 3.0.24. Previous versions of Samba release 3 may be vulnerable. Release version 2 and below did not have this feature.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3621 | | Related CVE(s): | CVE-2007-2447 | | Last Modified: | May 15 08:39:44 2007 |
| MD5 Checksum: | 629add6846a069a66788467f82a3a333 |
|
| /// File Name: |
TPTI-07-06.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cerulean Studios Trillian Pro. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Rendezvous / XMPP (Extensible Messaging and Presence Protocol) messaging subsystem. Trillian locates nearby users through the '_presence' mDNS (multicast DNS) service on UDP port 5353. Once a user is registered through mDNS, messaging is accomplished via XMPP over TCP port 5298.
| | Author: | Pedram Amini | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 3610 | | Related CVE(s): | CVE-2007-2418 | | Last Modified: | May 3 09:57:40 2007 |
| MD5 Checksum: | fb5aa90835f24579cb43a1eb28debb6f |
|
| /// File Name: |
sa25029.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in HP StorageWorks Command View Advanced Edition for XP, which potentially can be exploited by malicious, local users to gain access to other users' accounts.
| | Homepage: | http://secunia.com/advisories/25029/ | | File Size: | 3600 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | afb4d8a9ef8a180c90ae09ed45b0f829 |
|
| /// File Name: |
05.24.07-1.txt |
Description:
|
iDefense Security Advisory 05.24.07 - Local exploitation of a privilege escalation vulnerability in Apple Computer Inc.'s Mac OS X pppd could allow an attacker to gain root privileges. The vulnerability exists due to insufficient access validation when processing the "plugin" command line option. The application does not properly verify that the requesting user has root privileges and allows any user to load plug-ins. When checking to see if the executing user has root privileges, a check is made to see if the stdin file descriptor is owned by root. Passing this check is trivial and allows the attacker to load arbitrary plug-ins resulting in arbitrary code execution with root privileges. iDefense has confirmed the existence of this vulnerability in version 10.4.8 of Mac OS X. Other versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3568 | | Related CVE(s): | CVE-2007-0752 | | Last Modified: | May 30 22:49:34 2007 |
| MD5 Checksum: | 05fecd15da1bbba24ed181f41519fb2d |
|
| /// File Name: |
sa25135.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in HP Tru64, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/25135/ | | File Size: | 3560 | | Last Modified: | May 4 17:30:32 2007 |
| MD5 Checksum: | e924a8a3ed7533d67e85b0dfce710e05 |
|
| /// File Name: |
sa25072.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25072/ | | File Size: | 3555 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | feea647c2a8c531e49b59721062a869f |
|
| /// File Name: |
adobe-xss.txt |
Description:
|
Adobe RoboHelp 6, RoboHelp Server 6, and RoboHelp X5 suffer from a cross site scripting vulnerability.
| | Author: | Michael Domberg | | Homepage: | http://www.devtarget.org/ | | File Size: | 3552 | | Last Modified: | May 12 04:46:33 2007 |
| MD5 Checksum: | 5636fefbce5c006174287a4e8757d98b |
|
| /// File Name: |
SYM07-007.txt |
Description:
|
CERT notified Symantec that a buffer overflow exists in an ActiveX Control used by Norton Personal Firewall. The error occurs in the Get() and Set() functions used by ISAlertDataCOM, which is part of ISLALERT.DLL. A successful exploit of this vulnerability could potentially allow the remote execution of code on a vulnerable system, with the rights of the logged-in user.
| | Author: | Will Dormann | | Homepage: | http://www.symantec.com/ | | File Size: | 3523 | | Last Modified: | May 17 04:33:02 2007 |
| MD5 Checksum: | ede6160ce3905e7d5b3e1667b1d5fcaf |
|
| /// File Name: |
05.09.07-2.txt |
Description:
|
iDefense Security Advisory 05.09.07 - Local exploitation of a buffer overflow vulnerability in Computer Associates International Inc.'s (CA) eTrust Antivirus allows attackers to execute arbitrary code with SYSTEM privileges. The Task Service component of eTrust Antivirus, InoTask.exe, is used to schedule and execute tasks such as scanning the system for virii. The service uses a shared file mapping to share information about scheduled tasks. The file mapping has a NULL security descriptor, which allows any user to modify its contents. By modifying a string inside of this mapping an attacker can trigger a stack based overflow in the InoTask process. iDefense confirmed that CA eTrust Antivirus r8 on Windows is vulnerable.
| | Author: | binagres | | Homepage: | http://www.idefense.com/ | | File Size: | 3504 | | Related CVE(s): | CVE-2007-2523 | | Last Modified: | May 11 04:02:12 2007 |
| MD5 Checksum: | 93ef0d3457b92f32e35c449f66804be2 |
|
| /// File Name: |
sa25098.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued updates for multiple packages. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges or to gain escalated privileges, bypass certain security restrictions, and cause a DoS (Denial of Service), or by malicious users to bypass certain security restrictions and malicious people to spoof emails, cause a DoS or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25098/ | | File Size: | 3501 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 1d4ebd4115261ece7ff1d7d636229a75 |
|
| /// File Name: |
sa25002.txt |
Description:
|
Secunia Security Advisory - Irene Abezgauz has reported a vulnerability in CA CleverPath Portal, which can be exploited by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/25002/ | | File Size: | 3491 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | d4f3a6a4453b76c1de55d606a5035eb5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
